Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: /9X37Yn64eteml8VKOKe+Ik9NgKHN6ahkasj5JM7HyE=
Subject key identifier: 6A:35:69:41:B8:D5:3D:F5:67:E5:4E:63:40:49:78:DA:6C:3F:66:EE
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 0198D4E00C26477A6B3E1D1A4F62E1DCC90A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 0529
Signing time: Sat 23 Aug 2025 03:01:49 +0000
Manifest this update: Sat 23 Aug 2025 03:01:49 +0000
Manifest next update: Sun 24 Aug 2025 03:01:49 +0000
Files and hashes: 1: tOD7ZPqas8UpTT4bdLzx0MJD5rk.roa (hash: k/eXxf7557SFB+l+Q/mWhChu1kZsTZ07A3b0mG1jAsA=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: PQLXkxo3PfFfG1cG3DqvZu5aOJHO1j21u5jxJSJxwy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0c:26:47:7a:6b:3e:1d:1a:4f:62:e1:dc:c9:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Aug 23 03:01:49 2025 GMT
Not After : Aug 24 03:01:49 2025 GMT
Subject: CN=6a356941b8d53df567e54e63404978da6c3f66ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:49:3a:15:94:71:8c:5c:bc:2a:3b:6a:6c:
f9:21:2f:0d:f1:7f:2e:be:b0:1b:2e:b7:0a:d1:30:
0b:bc:be:68:c6:3d:76:1e:72:1e:eb:a6:f0:d9:cb:
3f:64:2d:83:52:bd:31:38:23:8f:11:26:65:09:f7:
c2:71:02:78:cc:a7:2a:8f:35:5f:10:1f:27:3e:5a:
07:fe:8e:7d:db:34:1b:a1:02:b6:10:1a:a8:26:e4:
e2:53:48:9a:22:6d:b0:10:1a:c8:d5:ae:1c:6c:42:
17:50:e1:56:92:72:a2:7c:98:51:42:47:ea:87:ae:
41:fc:c6:d9:2b:0c:a5:2e:f7:a4:fc:e0:6a:a7:50:
0a:73:ec:e7:99:4f:34:e2:8f:f1:5b:47:d1:d9:53:
de:e4:5a:70:37:2c:92:89:76:51:5c:86:64:a4:c9:
b4:d1:01:32:90:be:81:74:49:d4:33:5a:e7:e9:c8:
db:78:59:ff:1b:8a:6f:60:7a:53:ba:ee:81:b2:48:
cd:6e:70:6a:46:c9:ab:a4:cf:fd:ba:67:91:da:b9:
09:95:67:e1:9d:cc:99:31:ac:37:a9:ea:dc:f0:3c:
fa:25:71:c1:57:cb:17:59:19:05:8a:19:e5:74:fe:
b8:b2:26:9d:3d:81:0e:23:44:23:bd:0b:48:0c:4b:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:35:69:41:B8:D5:3D:F5:67:E5:4E:63:40:49:78:DA:6C:3F:66:EE
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:71:eb:9a:39:e9:b8:ad:78:df:2a:1e:bf:87:35:2b:2a:eb:
9a:b7:4e:0c:a1:ef:78:97:00:04:a0:10:0c:ab:77:24:2b:cb:
11:e6:80:b9:97:e2:dc:ac:fb:b3:9a:b1:3f:c8:bc:57:10:4b:
ac:21:b6:de:dc:0a:27:95:9e:06:0a:ed:12:52:96:f0:0e:f2:
e8:d5:2a:f8:55:5a:ea:b3:31:7b:4e:5c:16:42:f4:71:0d:03:
56:c7:20:c0:f3:e0:cc:b1:52:3a:15:1c:ae:9d:62:0b:f4:15:
94:62:84:e6:64:bc:ca:c8:92:c3:fd:28:8b:35:c6:64:4c:14:
f6:f5:c5:24:b2:10:ef:6e:f9:aa:8b:b1:a5:15:44:ab:ba:47:
4f:22:b2:6f:5f:4a:ec:cd:5f:24:4e:75:22:10:db:0d:56:26:
64:82:cf:38:bc:f9:bf:00:c4:4b:73:32:1f:4e:45:95:cf:01:
42:92:dc:45:07:dd:b7:d4:3e:bb:4e:b4:6d:c9:90:a4:ff:55:
77:02:78:99:93:b2:72:b8:3b:23:95:cb:cc:67:1d:47:95:c7:
79:6b:ee:bd:81:f3:ee:ea:25:23:0f:2d:c1:b1:89:68:7b:1a:
43:d2:8d:75:07:f3:49:2e:08:83:07:40:06:cf:16:9b:00:5c:
85:88:cb:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:09:55 2025 by rpki-client